Crate tor_hscrypto

tor-hscrypto

tor-hscrypto: Basic cryptography used by onion services

Overview

This crate is part of Arti, a project to implement Tor in Rust.

Onion services and the clients that connect to them need a few cryptographic operations not used by the rest of Tor. These include:

• A set of key-blinding operations to derive short-term public keys from long-term public keys.
• An ad-hoc SHA3-based message authentication code.
• Operations to encode and decode public keys as .onion addresses.
• A set of operations to divide time into different “periods”. These periods are used as inputs to the DHT-style hash ring, and to the key-blinding operations.

This crate implements those operations, along with a set of wrapper types to keep us from getting confused about the numerous keys and nonces used for the onion services.

License: MIT OR Apache-2.0

Modules

• opeope
  A simple order-preserving encryption function.
• ops
  Mid-level cryptographic operations used in the onion service protocol.
• pk
  Key type wrappers of various kinds used in onion services.
• time
  Manipulate time periods (as used in the onion service system)

Structs

• RendCookie
  An opaque value RENDEZVOUS_COOKIE used at a rendezvous point to match clients and services.
• RevisionCounter
  Counts which revision of an onion service descriptor is which, within a given time period.
• Subcredential
  A value to identify an onion service during a given period. (N_hs_subcred)

Constants

• NUM_INTRO_POINT_DEF
  Default number of introduction points a service should establish
• NUM_INTRO_POINT_MAX
  Maximum number of introduction points a service should establish and we should tolerate